VDB

ALPINE-CVE-2024-36293

ALPINE-CVE-2024-36293 PUBLISHED CVSS 6.800000190734863 MEDIUM

Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.

Risk Scores

CVSS 4.0
6.800000190734863
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Affected Products

VendorProductVersions
Alpine:v3.21intel-ucode20210216-r0, 0, 20130222-r0
Alpine:v3.22intel-ucode20180312-r0, 0, 20241112-r0
Alpine:v3.19intel-ucode0, *, 0
Alpine:v3.18intel-ucode20170511-r0, 20200508-r0, 20190618-r0
Alpine:v3.23intel-ucode20190514a-r0, *, 20180807a-r1
Alpine:v3.20intel-ucode20220419-r0, 20220809-r0, 20221108-r0
Alpine:v3.24intel-ucode0

Timeline

  • Feb 12, 2025 CVE Published
  • Apr 30, 2026 Distribution Patch
  • Jun 15, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›